Are Hikvision HD Analog Cameras Vulnerable Like IP Cameras?

I hope this is received in the "there are no stupid questions" spirit that it is intended. Does the Hikvision hacking vulnerability concern extend to HD analogue systems? Does the source of the vulnerability reside within the cameras or DVRs? Thanks


James -

Most of what has been discussed has concentrated on the Hikvision IP cameras. However there have been some similar vulnerabilities reported in various DVR's.

For an HD analog system, the cameras are not prone to hacking over the network, but the DVR could be an attack point.

If the same company is writing firmware/code for both devices, and at least one of those devices has been shown to be insecure, most security people would think it a reasonable assumption to not trust the other device either.

Ethan did a good report on device security: Network Security For IP Surveillance that covers many of the things you'd want to consider, whether you're securing a camera or a DVR.

So, HD analog cameras are not vulnerable, but you might not want to trust the DVR without doing some basic best-practices.

Very good.

Thank you!

The first Hikvision hacking incident (at least that I recall) was with DVRs, not cameras. Vulnerable DVRs were turned into bitcoin miners.

They actually closed some security holes in DVR firmware before the camera firmware, quite possibly because cameras weren't really notably hacked (in other words: made very public) until later.

Ethan, correct me if I'm wrong, but I'm under the impression that at this point in time, there is no particular security vulnerability with hikvision that doesn't also exist with any other manufacturer.

My understanding is that hikvision may have even over-secured their hardware since the original vulnerabilities came to light a while back.

I defer to your expertise Ethan.... but this is the impression I'm currently working with. Please correct me if I'm wrong.

To be direct in this answer:

There is no known security vulnerability in Hikvision cameras compared to other manufacturers. They actually have fewer open ports and require stronger passwords than most, and the activation process is not common.

I wouldn't say they over secured it. Some people are annoyed by the extra time required to activate cameras, which from what I'm told can be especially a problem with their plug n play NVRs (haven't tested it ourselves yet), but I see no reason strong passwords and closed ports are a problem.

That being said, Hikvision has a history of exploits. Others do not. Hikvision has exhibited a fairly nonchalant (understatement) attitude toward security, as well. And they are a large target with a ton of deployed devices still running old firmwares. So those things combined make them a larger risk than others. Which we're discussing here.

Let me give you this little bit of perspective; all of their products are capable of being managed by the same software (SADP), so there is likely similarities in their code. If someone were to find an exploit using SADP or iVMS, they could potentially affect any IP connected device. Now, since TVI cameras aren't directly connected to an IP network, the exploit would have to be applied to the DVR.